Use the following table as a reference when setting up Access Control and writing a permissions policy that you can
attach to an IAM identity (an identity-based policy). The list includes each Amazon
Comprehend API
operation, the corresponding action for which you can grant permissions to perform
the
action, and the AWS resource for which you can grant the permissions. You specify
the
actions in the policy's Action field, and you specify the resource value in
the policy's Resource field.

To express conditions, you can use AWS-wide condition keys in your Amazon Comprehend
policies. For
a complete list of AWS-wide keys, see Available
Keys in the IAM User Guide.

Note

To specify an action, use the comprehend: prefix followed by the API
operation name, for example, comprehend:DetectEntities.

If you see an expand arrow (↗) in the upper-right corner of the table, you can open the table in a new
window. To close the window, choose the close button (X) in the lower-right corner.